Legend

Intrusion Prevention

MS.Windows.Rshd.Server.Remote.Stack.Overflow

Description

This indicates an attempt to exploit a Stack Based Buffer Overflow in Mike Dubman's Windows RSH daemon.The vulnerability is in the RSHD daemon (rshd.exe). It is caused by a boundary check error and can be exploited via an overly long, specially crafted packet sent to the default port 514/TCP.